Critical Linux Kernel Vulnerability Let Attackers Execute Code
SMB servers that have ksmbd enabled are vulnerable to hacking due to a major Linux kernel vulnerability (CVSS score of 10).
KSMBD is a Linux...
Microsoft Issues January 2023 Patch Tuesday Updates, Warns of Zero-Day Exploit
The first Patch Tuesday fixes shipped by Microsoft for 2023 have addressed a total of 98 security flaws, including one bug that the...
Russia-linked APT28 Group Exploiting Cisco Routers
A recent report from CISA (US Cybersecurity and Infrastructure Security Agency) revealed that the APT 28 group was responsible for exploiting Cisco routers with...
Over 100 Siemens PLC Models Found Vulnerable to Firmware Takeover
Jan 12, 2023Ravie LakshmananFirmware and Hardware Security
Security researchers have disclosed multiple architectural vulnerabilities in Siemens SIMATIC and SIPLUS S7-1500 programmable logic controllers (PLCs)...
Former Ubiquiti Employee Gets 6 Years in Jail for $2 Million Crypto Extortion Case
May 15, 2023Ravie LakshmananCyber Crime / Network Security
A former employee of Ubiquiti has been sentenced to six years in jail after he pleaded...
Developer Alert: NPM Packages for Node.js Hiding Dangerous TurkoRat Malware
Two malicious packages discovered in the npm package repository have been found to conceal an open source information stealer malware called TurkoRat.
The packages...
Hackers Use TrickGate Packer to Deploy Emotet
The cybersecurity analysts at Check Point Research recently reported that TrickGate, a shellcode-based packer, has been in operation for over six years without being...
Dr. Active Directory vs. Mr. Exposed Attack Surface: Who’ll Win This Fight?
May 19, 2023The Hacker NewsThreat Protection / Attack Surface
Active Directory (AD) is among the oldest pieces of software still used in the production...
RTM Locker’s First Linux Ransomware Strain Targeting NAS and ESXi Hosts
Apr 27, 2023Ravie LakshmananLinux / Endpoint Security
The threat actors behind RTM Locker have developed a ransomware strain that's capable of targeting Linux machines,...
The Rising Threat of Secrets Sprawl and the Need for Action
May 23, 2023The Hacker NewsApplication Security
The most precious asset in today's information age is the secret safeguarded under lock and key. Regrettably, maintaining...